SPLK-1003 Macros, Saved Searches and CIM • 30 Questions
30 SPLK-1003 Macros, Saved Searches and CIM practice questions with answers and explanations. Free, no signup.
A security analyst wants to create a macro that extracts IP addresses from a field named `src_ip` and returns a count of unique IPs per source. Which macro definition accomplishes this?